Microsoft - Safe Links (Email Security)


This article explains Microsoft Safe Links, a security feature designed to help you assess the risk of hyperlinks while using Office 365 applications.

Safe Links, provided and maintained by Microsoft, reviews URLs in real-time within Outlook, Teams, and other Office 365 applications.

Overview

When you click a link in these environments, Safe Links will first check its security. If the link is safe, you will then be taken to the destination.This tool helps protect you and the university by:

  • Scanning URLs for malicious content.
  • Enhancing threat visibility for University IT.
  • Increasing individual awareness of potential risks.
Initial Settings

The UA's instance of MS Safe Links is configured to scan URLs in real-time when you click on them. This feature does not delay the delivery of emails or the opening of Teams pages and Office 365 documents.

The process applies to messages delivered to the university-administered Microsoft email service and all other relevant applications covered by the university's Office 365 license, including Teams.

The Safety Links Experience

Hover Behavior

In most cases messages display the actual URL. When you hover over a link, you see the Safe Links destination URL, indicating that the URL will be scanned:



Email Message Displays

Some messages show the Microsoft Safe Link URL in the body of the message. These are typically sent from automated systems. When URLs begin with the safe links base address (https://nam11.safelinks.protection.outlook.com...) they are safe to click:



Verification Message Displays

Clicking on a link in a document, email, or Teams chat may show a brief verification message, as shown in the image below.

Often you will not see this message because scans take less than 1 second. The screen typically passes by faster than you can see:


Once the link is confirmed as safe, you will be directed to the content it links to. This could be a page, document, or file, whether it’s in a message, a document, or a Teams chat.

Malicious URLs

If a malicious link is detected, you will see the following warning message.

Do not click on Continue Anyway to bypass the warning, even if the link looks like it’s from a trusted source. 

Instead, please forward the email as an attachment to the phish@arizona.edu team.